Computer Engineering and Applications ›› 2007, Vol. 43 ›› Issue (19): 135-137.

• 网络、通信与安全 • Previous Articles     Next Articles

New packet marking scheme for DDoS attack source traceback

YANG Chang-chun1,2,NI Tong-guang2,XUE Heng-xin1   

  1. 1.School of Economics & Management,Nanjing University of Science and Technology,Nanjing 210094,China
    2.Department of Computer Science and Engineering,Jiangsu Polytechnic University,Changzhou,Jiangsu 213164,China
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-07-01 Published:2007-07-01
  • Contact: YANG Chang-chun

一种新的DDoS攻击源追踪包标记方法

杨长春1,2,倪彤光2,薛恒新1   

  1. 1.南京理工大学 经济管理学院,南京 210094
    2.江苏工业学院 计算机科学与工程系,江苏 常州 213164
  • 通讯作者: 杨长春

PDF

Abstract: Distributed Denial of Service(DDoS) attack is one of the hardest network problems.Among several countermeasures,
packet marking used for IP traceback is promising.In this paper,a new packet making scheme is given,which can cover some routers not supporting packet marking.This scheme can be used to advance the accuracy of a reconstructed path in an incomplete packet marking network.Its performances are emulated and the results show well.

摘要: 分布式拒绝服务(DDoS)攻击是目前最难处理的网络难题之一,在提出的多种对策中,通过包标记方法来进行IP跟踪受到广泛重视。提出了一种新的包标记方法(IPPM),来改进包标记方法需要网络中每个路由器都支持的弱点。通过实验表明,在包标记方法不完整配置的网络中,该方法能有效地重构攻击路径并且误报率很低。

京ICP备13024262号-1
Copyright © Computer Engineering and Applications
Powered by Beijing Magtech Co., Ltd.
Total visitors:
Visitors of today:
Now online: